Joe Sandbox Cloud Basic Analysis Report

Loading Joe Sandbox Report ...

Edit tour

Linux Analysis Report
ntpd.elf

Overview

General Information

Sample name:ntpd.elf
Analysis ID:1585751
MD5:bade128898469a64827d5dada62d287d
SHA1:8763dd0050cff043ea6252aa3d73ab5c95fe1312
SHA256:e5e475db5076e112f69b61ccb36aaedfbb7cac54a03a4a2b3c6a4a9317af2196
Tags:elfkeypluguser-smica83
Infos:

Detection

Score:48
Range:0 - 100
Whitelisted:false

Signatures

Multi AV Scanner detection for submitted file
Contains symbols related to standard C library sleeps (sometimes used to evade sandboxing)
ELF contains segments with high entropy indicating compressed/encrypted content
Reads the 'hosts' file potentially containing internal network hosts
Sample has stripped symbol table
Sleeps for long times indicative of sandbox evasion
Uses the "uname" system call to query kernel version information (possible evasion)

Classification

General Information

Joe Sandbox version:41.0.0 Charoite
Analysis ID:1585751
Start date and time:2025-01-08 07:40:05 +01:00
Joe Sandbox product:CloudBasic
Overall analysis duration:0h 10m 49s
Hypervisor based Inspection enabled:false
Report type:full
Cookbook file name:defaultlinuxfilecookbook.jbs
Analysis system description:Ubuntu Linux 20.04 x64 (Kernel 5.4.0-72, Firefox 91.0, Evince Document Viewer 3.36.10, LibreOffice 6.4.7.2, OpenJDK 11.0.11)
Analysis Mode:default
Sample name:ntpd.elf
Detection:MAL
Classification:mal48.linELF@0/0@1/0
Cookbook Comments:
  • Analysis time extended to 480s due to sleep detection in submitted sample

Warnings

  • Max analysis timeout: 600s exceeded, the analysis took too long
  • VT rate limit hit for: cloud.googleapi.computer

Runtime Messages

Command:/tmp/ntpd.elf
PID:6235
Exit Code:
Exit Code Info:
Killed:True
Standard Output:

Standard Error:

Process Tree

  • system is lnxubuntu20
  • ntpd.elf (PID: 6235, Parent: 6155, MD5: bade128898469a64827d5dada62d287d) Arguments: /tmp/ntpd.elf
  • cleanup

Yara Signatures

No yara matches

Suricata Signatures

No Suricata rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

AV Detection

barindex
Multi AV Scanner detection for submitted file
Source: ntpd.elfReversingLabs: Detection: 42%
Source: ntpd.elfVirustotal: Detection: 46%Perma Link
Source: /tmp/ntpd.elf (PID: 6235)Reads hosts file: /etc/hostsJump to behavior
Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.42
Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.43
Source: unknownTCP traffic detected without corresponding DNS query: 109.202.202.202
Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.42
Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.43
Source: unknownTCP traffic detected without corresponding DNS query: 109.202.202.202
Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.42
Source: unknownTCP traffic detected without corresponding DNS query: 91.189.91.43
Source: unknownUDP traffic detected without corresponding DNS query: 1.1.1.1
Source: global trafficDNS traffic detected: DNS query: cloud.googleapi.computer
Source: unknownNetwork traffic detected: HTTP traffic on port 43928 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 443 -> 59790
Source: unknownNetwork traffic detected: HTTP traffic on port 42836 -> 443
Source: unknownNetwork traffic detected: HTTP traffic on port 59790 -> 443
Source: ELF static info symbol of initial sample.symtab present: no
Source: classification engineClassification label: mal48.linELF@0/0@1/0
Source: ntpd.elfSubmission file: segment LOAD with 7.8311 entropy (max. 8.0)
Source: ELF symbol in initial sampleSymbol name: usleep
Source: /tmp/ntpd.elf (PID: 6235)Sleeps longer then 60s: 414.637sJump to behavior
Source: /tmp/ntpd.elf (PID: 6235)Queries kernel information via 'uname': Jump to behavior

Mitre Att&ck Matrix

ReconnaissanceResource DevelopmentInitial AccessExecutionPersistencePrivilege EscalationDefense EvasionCredential AccessDiscoveryLateral MovementCollectionCommand and ControlExfiltrationImpact
Gather Victim Identity InformationAcquire InfrastructureValid AccountsWindows Management InstrumentationPath InterceptionPath Interception2
Virtualization/Sandbox Evasion		OS Credential Dumping1
Security Software Discovery		Remote ServicesData from Local System1
Encrypted Channel		Exfiltration Over Other Network MediumAbuse Accessibility Features
CredentialsDomainsDefault AccountsScheduled Task/JobBoot or Logon Initialization ScriptsBoot or Logon Initialization Scripts1
Obfuscated Files or Information		LSASS Memory2
Virtualization/Sandbox Evasion		Remote Desktop ProtocolData from Removable Media1
Non-Application Layer Protocol		Exfiltration Over BluetoothNetwork Denial of Service
Email AddressesDNS ServerDomain AccountsAtLogon Script (Windows)Logon Script (Windows)Obfuscated Files or InformationSecurity Account Manager1
File and Directory Discovery		SMB/Windows Admin SharesData from Network Shared Drive2
Application Layer Protocol		Automated ExfiltrationData Encrypted for Impact

Malware Configuration

No configs have been found

Behavior Graph

Hide Legend

Legend:

  • Process
  • Signature
  • Created File
  • DNS/IP Info
  • Is Dropped
  • Number of created Files
  • Is malicious
  • Internet

Screenshots

Thumbnails

This section contains all screenshots as thumbnails, including those not shown in the slideshow.


windows-stand

Antivirus, Machine Learning and Genetic Malware Detection

Initial Sample

SourceDetectionScannerLabelLink
ntpd.elf42%ReversingLabsLinux.Trojan.Generic
ntpd.elf46%VirustotalBrowse

Dropped Files

No Antivirus matches

Domains

No Antivirus matches

URLs

No Antivirus matches

Domains and IPs

Contacted Domains

NameIPActiveMaliciousAntivirus DetectionReputation
cloud.googleapi.computer
8.210.201.184
truefalse
    		unknown

    World Map of Contacted IPs

    • No. of IPs < 25%
    • 25% < No. of IPs < 50%
    • 50% < No. of IPs < 75%
    • 75% < No. of IPs

    Public IPs

    IPDomainCountryFlagASNASN NameMalicious
    109.202.202.202
    		unknownSwitzerland
    		13030INIT7CHfalse
    8.210.201.184
    		cloud.googleapi.computerSingapore
    		45102CNNIC-ALIBABA-US-NET-APAlibabaUSTechnologyCoLtdCfalse
    91.189.91.43
    		unknownUnited Kingdom
    		41231CANONICAL-ASGBfalse
    91.189.91.42
    		unknownUnited Kingdom
    		41231CANONICAL-ASGBfalse

    Joe Sandbox View / Context

    IPs

    MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
    109.202.202.202kpLwzBouH4.elfGet hashmaliciousUnknownBrowse
    • ch.archive.ubuntu.com/ubuntu/pool/main/f/firefox/firefox_92.0%2bbuild3-0ubuntu0.20.04.1_amd64.deb
    91.189.91.43tftp.elfGet hashmaliciousUnknownBrowse
      la.bot.mipsel.elfGet hashmaliciousMiraiBrowse
        la.bot.arc.elfGet hashmaliciousMiraiBrowse
          la.bot.m68k.elfGet hashmaliciousMiraiBrowse
            la.bot.arm6.elfGet hashmaliciousMiraiBrowse
              spc.elfGet hashmaliciousMiraiBrowse
                sshd.elfGet hashmaliciousUnknownBrowse
                  boatnet.mips.elfGet hashmaliciousMiraiBrowse
                    boatnet.sh4.elfGet hashmaliciousMiraiBrowse
                      la.bot.arm6.elfGet hashmaliciousMiraiBrowse
                        91.189.91.42tftp.elfGet hashmaliciousUnknownBrowse
                          la.bot.mipsel.elfGet hashmaliciousMiraiBrowse
                            la.bot.arc.elfGet hashmaliciousMiraiBrowse
                              la.bot.arm7.elfGet hashmaliciousMiraiBrowse
                                la.bot.m68k.elfGet hashmaliciousMiraiBrowse
                                  la.bot.arm6.elfGet hashmaliciousMiraiBrowse
                                    spc.elfGet hashmaliciousMiraiBrowse
                                      sshd.elfGet hashmaliciousUnknownBrowse
                                        boatnet.mips.elfGet hashmaliciousMiraiBrowse
                                          boatnet.sh4.elfGet hashmaliciousMiraiBrowse

                                            Domains

                                            No context

                                            ASNs

                                            MatchAssociated Sample Name / URLSHA 256DetectionThreat NameLinkContext
                                            CANONICAL-ASGBtftp.elfGet hashmaliciousUnknownBrowse
                                            • 91.189.91.42
                                            la.bot.mipsel.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            la.bot.arc.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            la.bot.arm7.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            la.bot.m68k.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            la.bot.arm6.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            spc.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            sshd.elfGet hashmaliciousUnknownBrowse
                                            • 91.189.91.42
                                            boatnet.mips.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            boatnet.sh4.elfGet hashmaliciousMiraiBrowse
                                            • 91.189.91.42
                                            CNNIC-ALIBABA-US-NET-APAlibabaUSTechnologyCoLtdCmiori.spc.elfGet hashmaliciousUnknownBrowse
                                            • 47.251.104.78
                                            287438657364-7643738421.08.exeGet hashmaliciousNitolBrowse
                                            • 8.217.47.169
                                            i486.elfGet hashmaliciousMiraiBrowse
                                            • 47.254.187.221
                                            2749837485743-7684385786.05.exeGet hashmaliciousNitolBrowse
                                            • 8.217.59.73
                                            Fantazy.m68k.elfGet hashmaliciousUnknownBrowse
                                            • 8.213.155.157
                                            Fantazy.arm7.elfGet hashmaliciousMiraiBrowse
                                            • 47.245.235.159
                                            z0r0.x86.elfGet hashmaliciousMiraiBrowse
                                            • 8.209.129.226
                                            2b687482300.6345827638.08.exeGet hashmaliciousUnknownBrowse
                                            • 8.217.47.169
                                            armv7l.elfGet hashmaliciousUnknownBrowse
                                            • 8.212.89.249
                                            Josho.x86.elfGet hashmaliciousUnknownBrowse
                                            • 47.235.55.179
                                            INIT7CHtftp.elfGet hashmaliciousUnknownBrowse
                                            • 109.202.202.202
                                            la.bot.mipsel.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202
                                            la.bot.arc.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202
                                            la.bot.arm7.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202
                                            la.bot.m68k.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202
                                            la.bot.arm6.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202
                                            spc.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202
                                            sshd.elfGet hashmaliciousUnknownBrowse
                                            • 109.202.202.202
                                            boatnet.mips.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202
                                            boatnet.sh4.elfGet hashmaliciousMiraiBrowse
                                            • 109.202.202.202

                                            JA3 Fingerprints

                                            No context

                                            Dropped Files

                                            No context

                                            Created / dropped Files

                                            No created / dropped files found

                                            Static File Info

                                            General

                                            File type:ELF 64-bit LSB executable, x86-64, version 1 (SYSV), dynamically linked, interpreter /lib64/ld-linux-x86-64.so.2, stripped
                                            Entropy (8bit):7.818852231542011
                                            TrID:
                                            • ELF Executable and Linkable format (Linux) (4029/14) 49.77%
                                            • ELF Executable and Linkable format (generic) (4004/1) 49.46%
                                            • Lumena CEL bitmap (63/63) 0.78%
                                            File name:ntpd.elf
                                            File size:3'923'032 bytes
                                            MD5:bade128898469a64827d5dada62d287d
                                            SHA1:8763dd0050cff043ea6252aa3d73ab5c95fe1312
                                            SHA256:e5e475db5076e112f69b61ccb36aaedfbb7cac54a03a4a2b3c6a4a9317af2196
                                            SHA512:b86449ac63dc626c6617e5321dc6bbc662acc501be5a0c52a75c90e04de3ac756568645e8737ffc8ca0fc0a45ce897a469c42d69e07921bc4a8b5da1b036a700
                                            SSDEEP:98304:QH1SnK0oDBU4cZ5PbMCSnFnwVPTnO3UcrE7WbTm:Qy1PbzS6VPTnOrE7W2
                                            TLSH:2306027E61843718C419C8349027FD84B1B6521E5AFDC5AAB1EBBBC07BAB521DA07F07
                                            File Content Preview:.ELF..............>.....CM......@.........;.........@.8...@.............@.......@.@.....@.@.....0.......0.................................@.......@...............................................@.......@.............5......... .......................`....

                                            Static ELF Info

                                            ELF header

                                            Class:ELF64
                                            Data:2's complement, little endian
                                            Version:1 (current)
                                            Machine:Advanced Micro Devices X86-64
                                            Version Number:0x1
                                            Type:EXEC (Executable file)
                                            OS/ABI:UNIX - System V
                                            ABI Version:0
                                            Entry Point Address:0xe64d43
                                            Flags:0x0
                                            ELF Header Size:64
                                            Program Header Offset:64
                                            Program Header Size:56
                                            Number of Program Headers:10
                                            Section Header Offset:3921159
                                            Section Header Size:64
                                            Number of Section Headers:28
                                            Header String Table Index:25

                                            Sections

                                            NameTypeAddressOffsetSizeEntSizeFlagsFlags DescriptionLinkInfoAlign
                                            NULL0x00x00x00x00x0000
                                            .interpPROGBITS0x4002a80x2a80x1c0x00x2A001
                                            .gnu.hashGNU_HASH0x13b31600x3b31600x1c0x00x2A308
                                            .dynsymDYNSYM0x13b31800x3b31800x12000x180x2A418
                                            .dynstrSTRTAB0x13b43800x3b43800x6d40x00x2A001
                                            .gnu.versionVERSYM0x13b4a540x3b4a540x1800x20x2A302
                                            .gnu.version_rVERNEED0x13b4bd80x3b4bd80x1200x00x2A478
                                            .rela.dynRELA0x13b4cf80x3b4cf80x2e80x180x2A308
                                            .rela.pltRELA0x13b4fe00x3b4fe00xf300x180x2A3108
                                            .initPROGBITS0x401ac80x1ac80x180x00x6AX004
                                            .pltPROGBITS0x401ae00x1ae00x6000x100x6AX004
                                            .textPROGBITS0x4020e00x20e00x172e80x00x6AX0016
                                            .finiPROGBITS0x4193c80x193c80xe0x00x6AX004
                                            .rodataPROGBITS0x4193e00x193e00x44d0x00x2A0032
                                            .eh_frame_hdrPROGBITS0x13b5f100x3b5f100x132c0x00x2A004
                                            .eh_framePROGBITS0x13b723c0x3b723c0x60100x00x2A008
                                            .gcc_except_tablePROGBITS0x41e4340x1e4340x4010x00x2A001
                                            .ctorsPROGBITS0x61f8000x2d00x180x00x3WA008
                                            .dtorsPROGBITS0x61f8180x2e80x100x00x3WA008
                                            .jcrPROGBITS0x61f8280x2f80x80x00x3WA008
                                            .data.rel.roPROGBITS0x61f8400x3100x2600x00x3WA0032
                                            .dynamicDYNAMIC0x13bd24c0x3bd24c0x1d00x100x3WA408
                                            .gotPROGBITS0xe5a8780x5a8780x5280x80x3WA008
                                            .dataPROGBITS0x6200000xad00x600x00x3WA0032
                                            .bssNOBITS0x6200600xb300xce80x00x3WA0032
                                            .shstrtabSTRTAB0x00x3bd41c0xeb0x00x0001
                                            .upx0PROGBITS0x8200600x200600x4482e30x00x6AX001
                                            .upx1PROGBITS0xe002d00x2d00x3b2e900x00x6AX001

                                            Program Segments

                                            TypeOffsetVirtual AddressPhysical AddressFile SizeMemory SizeEntropyFlagsFlags DescriptionAlignProg InterpreterSection Mappings
                                            PHDR0x400x4000400x4000400x2300x2302.05190x5R E0x8
                                            INTERP0x2a80x4002a80x4002a80x1c0x1c3.94080x4R 0x1/lib64/ld-linux-x86-64.so.2.interp
                                            LOAD0x00x4000000x4000000x2c40x1e8352.32700x5R E0x200000.interp
                                            LOAD0x2d00x6002d00x6002d00x00x20a780.00000x6RW 0x200000.bss
                                            DYNAMIC0x3bd24c0x13bd24c0x13bd24c0x2100x1d02.59310x6RW 0x8.dynamic
                                            GNU_EH_FRAME0x3b5f100x13b5f100x13b5f100xb6c0x132c5.32030x4R 0x4
                                            GNU_STACK0x00x00x00x00x00.00000x6RW 0x8
                                            LOAD0x2d00x8002d00x8002d00x00x4680730.00000x5R E0x200000
                                            LOAD0x2d00xe002d00xe002d00x3b2e900x3b2e907.83110x7RWE0x200000.got .upx1
                                            LOAD0x3b31600x13b31600x13b31600xa2bc0xa2bc4.65600x6RW 0x200000.gnu.hash .dynsym .dynstr .gnu.version .gnu.version_r .rela.dyn .rela.plt .eh_frame_hdr .eh_frame .dynamic

                                            Dynamic Tags

                                            TypeMetaValueTag
                                            DT_NEEDEDsharedliblibpthread.so.00x1
                                            DT_NEEDEDsharedliblibrt.so.10x1
                                            DT_NEEDEDsharedliblibutil.so.10x1
                                            DT_NEEDEDsharedliblibstdc++.so.60x1
                                            DT_NEEDEDsharedliblibm.so.60x1
                                            DT_NEEDEDsharedliblibgcc_s.so.10x1
                                            DT_NEEDEDsharedliblibc.so.60x1
                                            DT_NEEDEDsharedliblibdl.so.20x1
                                            DT_INITvalue0x401ac80xc
                                            DT_FINIvalue0xe507490xd
                                            DT_GNU_HASHvalue0x13b31600x6ffffef5
                                            DT_STRTABvalue0x13b43800x5
                                            DT_SYMTABvalue0x13b31800x6
                                            DT_STRSZbytes17480xa
                                            DT_SYMENTbytes240xb
                                            DT_DEBUGvalue0x00x15
                                            DT_PLTGOTvalue0xe5a8780x3
                                            DT_PLTRELSZbytes38880x2
                                            DT_PLTRELpltrelDT_RELA0x14
                                            DT_JMPRELvalue0x13b4fe00x17
                                            DT_RELAvalue0x13b4cf80x7
                                            DT_RELASZbytes7440x8
                                            DT_RELAENTbytes240x9
                                            DT_BIND_NOWvalue0x00x18
                                            DT_FLAGS_1value0x10x6ffffffb
                                            DT_VERNEEDvalue0x13b4bd80x6ffffffe
                                            DT_VERNEEDNUMvalue70x6fffffff
                                            DT_VERSYMvalue0x13b4a540x6ffffff0
                                            DT_NULLvalue0x00x0

                                            Symbols

                                            NameVersion Info NameVersion Info File NameSection NameValueSizeSymbol TypeSymbol BindSymbol VisibilityNdx
                                            .dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            _ITM_deregisterTMCloneTable.dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            _ITM_registerTMCloneTable.dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            _Jv_RegisterClasses.dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            _Jv_RegisterClasses.dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            _Unwind_ResumeGCC_3.0libgcc_s.so.1.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _Unwind_ResumeGCC_3.0libgcc_s.so.1.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _Unwind_Resume.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSs4_Rep10_M_destroyERKSaIcEGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSs4_Rep20_S_empty_rep_storageEGLIBCXX_3.4libstdc++.so.6.dynsym0x00OBJECT<unknown>DEFAULTSHN_UNDEF
                                            _ZNSs6appendEPKcmGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSs6appendERKSsGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSs6assignEPKcmGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSsC1EPKcRKSaIcEGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSsC1EPKcmRKSaIcEGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSsC1ERKSsGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSt8ios_base4InitC1EvGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZNSt8ios_base4InitD1EvGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZSt9terminatevGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZTVN10__cxxabiv117__class_type_infoECXXABI_1.3libstdc++.so.6.dynsym0x00OBJECT<unknown>DEFAULTSHN_UNDEF
                                            _ZTVN10__cxxabiv120__si_class_type_infoECXXABI_1.3libstdc++.so.6.dynsym0x00OBJECT<unknown>DEFAULTSHN_UNDEF
                                            _ZdaPvGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZdaPvGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZdlPvGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZdlPvGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZnamGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZnamGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZnwmGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            _ZnwmGLIBCXX_3.4libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __cxa_atexitGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __cxa_begin_catchCXXABI_1.3libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __cxa_finalizeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __errno_locationGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __fxstatatGLIBC_2.4libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __gmon_start__.dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            __gmon_start__.dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            __gxx_personality_v0CXXABI_1.3libstdc++.so.6.dynsym0x401fd00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __gxx_personality_v0CXXABI_1.3libstdc++.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __libc_start_mainGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            __pthread_key_create.dynsym0x00NOTYPE<unknown>DEFAULTSHN_UNDEF
                                            __xstatGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            abortGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            abortGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            acceptGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            bindGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            clock_gettimeGLIBC_2.2.5librt.so.1.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            closeGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            closeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            close.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            closedirGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            closedirGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            connectGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            dirfdGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            dladdrGLIBC_2.2.5libdl.so.2.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            dladdr.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            dup2GLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            endmntentGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            execveGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            exitGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            exitGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            exit.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fcloseGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fcloseGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fclose.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fcntlGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fgetsGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fgets.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fopenGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fopenGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fopen.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            forkGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            freadGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            freadGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            freeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            freeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            free.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fseekGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fseeko64GLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            ftellGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            ftello64GLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            fwriteGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            gethostbynameGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            gethostnameGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            getmntentGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            getpidGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            getpwuidGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            getsocknameGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            gettimeofdayGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            getuidGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            gmtimeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            inet_addrGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            inet_ntoaGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            ioctlGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            isalnumGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            killGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            listenGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            localtimeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            localtime_rGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            longjmpGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            lseekGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            lseek.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            mallocGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            mallocGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            malloc.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            memcpyGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            memcpyGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            memsetGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            mkdirGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            mmapGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            mmap.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            mprotectGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            mprotect.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            munmapGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            munmap.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            openGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            open.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            opendirGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            opendirGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            openptyGLIBC_2.2.5libutil.so.1.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pollGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_cancelGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_createGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_exitGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_joinGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_destroyGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_destroyGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_initGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_initGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_lockGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_lockGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_unlockGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutex_unlockGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutexattr_initGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_mutexattr_settypeGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            pthread_sigmaskGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            putsGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            puts.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            randGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            randGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            readGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            readdirGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            readdirGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            readlinkGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            readlink.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            realpathGLIBC_2.3libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            recvGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            recvfromGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            removeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            renameGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sched_getaffinityGLIBC_2.3.4libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sched_setaffinityGLIBC_2.3.4libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            selectGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sendGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sendtoGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            setmntentGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            setsidGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            setsockoptGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            shutdownGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sigaddsetGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sigemptysetGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            signalGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            snprintfGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            socketGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sprintfGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            srandGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            sscanfGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strcatGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strchrGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strchrGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strcmpGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strcmpGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strcpyGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strdupGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strftimeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strlenGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strlenGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strlen.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strncmpGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strncpyGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strncpyGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strstrGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            strtolGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            systemGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            system.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            timeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            timeGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            tolowerGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            unameGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            usleepGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            vsprintfGLIBC_2.2.5libc.so.6.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            waitpidGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF
                                            writeGLIBC_2.2.5libpthread.so.0.dynsym0x00FUNC<unknown>DEFAULTSHN_UNDEF

                                            Network Behavior

                                            Network Port Distribution

                                            TCP Packets

                                            TimestampSource PortDest PortSource IPDest IP
                                            Jan 8, 2025 07:40:46.491734982 CET59790443192.168.2.238.210.201.184
                                            Jan 8, 2025 07:40:46.491765976 CET443597908.210.201.184192.168.2.23
                                            Jan 8, 2025 07:40:46.491839886 CET59790443192.168.2.238.210.201.184
                                            Jan 8, 2025 07:40:46.504257917 CET59790443192.168.2.238.210.201.184
                                            Jan 8, 2025 07:40:46.504268885 CET443597908.210.201.184192.168.2.23
                                            Jan 8, 2025 07:40:46.504308939 CET443597908.210.201.184192.168.2.23
                                            Jan 8, 2025 07:40:49.344424009 CET43928443192.168.2.2391.189.91.42
                                            Jan 8, 2025 07:40:54.975826979 CET42836443192.168.2.2391.189.91.43
                                            Jan 8, 2025 07:40:56.511512041 CET4251680192.168.2.23109.202.202.202
                                            Jan 8, 2025 07:41:10.333570004 CET43928443192.168.2.2391.189.91.42
                                            Jan 8, 2025 07:41:20.572113991 CET42836443192.168.2.2391.189.91.43
                                            Jan 8, 2025 07:41:26.715257883 CET4251680192.168.2.23109.202.202.202
                                            Jan 8, 2025 07:41:51.287906885 CET43928443192.168.2.2391.189.91.42
                                            Jan 8, 2025 07:42:11.765029907 CET42836443192.168.2.2391.189.91.43

                                            UDP Packets

                                            TimestampSource PortDest PortSource IPDest IP
                                            Jan 8, 2025 07:40:46.478492975 CET3607653192.168.2.231.1.1.1
                                            Jan 8, 2025 07:40:46.490884066 CET53360761.1.1.1192.168.2.23

                                            DNS Queries

                                            TimestampSource IPDest IPTrans IDOP CodeNameTypeClassDNS over HTTPS
                                            Jan 8, 2025 07:40:46.478492975 CET192.168.2.231.1.1.10x4213Standard query (0)cloud.googleapi.computerA (IP address)IN (0x0001)false

                                            DNS Answers

                                            TimestampSource IPDest IPTrans IDReply CodeNameCNameAddressTypeClassDNS over HTTPS
                                            Jan 8, 2025 07:40:46.490884066 CET1.1.1.1192.168.2.230x4213No error (0)cloud.googleapi.computer8.210.201.184A (IP address)IN (0x0001)false

                                            System Behavior

                                            General

                                            Start time (UTC):06:40:45
                                            Start date (UTC):08/01/2025
                                            Path:/tmp/ntpd.elf
                                            Arguments:/tmp/ntpd.elf
                                            File size:3923032 bytes
                                            MD5 hash:bade128898469a64827d5dada62d287d

                                            Chronological Activities